Overview
Product Information on HashiCorp Vault
What is HashiCorp Vault?
HashiCorp Vault Pricing
Overall experience with HashiCorp Vault
“Centralized Secrets Management With Hashicorp Vault Strengthens Security and Auditability”
About Company
Company Description
IBM is a well-established entity focused on technology and development. The primary mission revolves around fostering technological growth and enhancing infrastructure, achieved through focused developments and consulting services. By encouraging inventiveness and innovation, it is geared towards facilitating the transition of theoretical ideas into practical realities, thus improving global functionalities. IBM brings about transformation by creating advanced solutions that reshape and redefine the world.
Company Details
Do You Manage Peer Insights at IBM?
Access Vendor Portal to update and manage your profile.
Key Insights
A Snapshot of What Matters - Based on Validated User Reviews
Reviewer Insights for: HashiCorp Vault
Performance of HashiCorp Vault Across Market Features
HashiCorp Vault Likes & Dislikes
Centralized Identity-based secrets management - Vaults lets us move away from scattered .env files, Jenkins creds and hardcoded passwords. Instead, each service and user is authenticated through the vault, which also helps define least privilege policies. This alone has helped our organization improve security posture and auditability. Dynamic Secrets and Automatic Rotation - The ability to generate short lived, dynamically rotated credentials for DB, cloud APIs and other systems is another aspect we are fully utilizing from Vault. If a secret is leaked, it's either already expired or can be revoked immediately. Community and tooling - One of the best features is that there are plenty of terraform modules, helm charts, and CI/CD integrations that make provisioning and managing vault less painful. The documentation is extensive, and the community is very active.
What I like most is the flexibility. Vault can fit into many different use cases, from basic secret storage to dynamic credentials and PKI. I also like the policy-based access model because it allows us to be quite granular without completely overcomplicating access. Another big advantage is that it pushes teams toward better security habits, which is a huge improvement over traditional approaches.
The dynamic secrets feature is the best. Being able to generate short-lived credentials for databases on the fly has massively shrunk our attack surface. I also really appreciate how well it integrates with the rest of our stack, whether it's Kubernetes or Terraform, there's almost always a native way to make it work.
Learning curve is pretty steep, and with heavy operational overhead. We also noticed the complex policy and permission model. We've received feedback that the UI has improved over time, but it still feels a bt clunky compared to more modern SaaS tools.
The biggest downside for me is the learning curve. Vault is powerful, but that also means it can feel complex at first, especially for teams that are new to secrets management concepts. Some parts of the configuration and troubleshooting process are not always intuitive, and if the initial architecture decisions are not made carefully, you can end up reworking things later. It's not a set it and forget it tool unless you keep the use case very simple.
It has qu8ite a learning curve. Policies and HCL can get confusing fast, and documentation isnt the best, as per my search. Also, the licensing costs have also become a bigger conversation lately, especially for smaller teams who just need the basics without the enterprise-level price tag.
Top HashiCorp Vault Alternatives
Peer Discussions
HashiCorp Vault Reviews and Ratings
- Head Of Cyber Defense Center<50M USDIT ServicesReview Source
Centralized Secrets Management With Hashicorp Vault Strengthens Security and Auditability
Hashicorp vault is one of those tools that i found powerful and valuable from day 1. We all have environments where secrets are laying across repos, CI/CD pipelines and dozens of microservices, Vault is a game changer; in small or low risk setups, it can feel like over-engineering. The first few weeks are spent rigorously with our existing architecture, policies and integrations but when it clicked; now its our backbone on we are handling our entire credentials and encryption. - It Security & Risk Management Associate50M-1B USDIT ServicesReview Source
Flexible Policy Controls and Robust Security Given Trade-Offs With Learning Curve
My overall experience with HashiCorp Vault has been very positive. We use it mainly for secrets management and access control across different environments, and it has helped us centralize a lot of things that were previously scattered in config files, scripts, and internal docs. Once it is setup properly, it becomes a core part of your infrastructure. It does require some planning and internal knowledge to manage well, but in day-to-day operations it gives a lot of confidence and control. - Technology Analyast50M-1B USDFinance (non-banking)Review Source
Great Secrets management tool
Vault is basically the industry standard for a reason. It's incredibly powerful and has handled our secrets management across multiple clouds without issues. That said, it’s not a set it and forget it tool. You really need to invest the time to understand the architecture, but once it's running, the security peace of mind is worth the effort. - Lead Engineer1B-10B USDMiscellaneousReview Source
Automated Deployment Stabilizes Vault Operations Despite Initial Setup Challenges
Overall, the process of setting up Vault was a bit challenging initially due to the deep technical depth required to understand how the product is laid out. Once we figured out all the kinks and automated the deployment of changes through the gitops model - the rest is all running smoothly. - CHIEF FINANCIAL OFFICER<50M USDFinance (non-banking)Review Source
Tight Data Protection Achieved with Vault Amid Concerns Over Access Configuration
HashiCorp Vault is now a critical tool for us to manage sensitive data. This is our main identity management system. We will now use HashiCorp to manage cross-division and cross-subsidiary data access too.